WHAT IS CLAIMED IS: 

1 . A method comprising: 

enumerating local credentials and remote credentials in response to 
receiving an event notification; and 

synchronizing the local credentials and remote credentials. 

2. The method of claim 1, wherein synchronizing the local credentials 
and the remote credentials is based on at least one time-stamp associated with the 
local credentials and at least one time-stamp associated with the remote 
credentials. 

3. The method of claim 1, wherein synchronizing the local credentials 
and the remote credentials is based on a comparison of hash values. 

4. The method of claim 1, wherein synchronizing includes error 
handling. 

5. The method of claim 1, wherein synchronizing includes writing at 
least one of the local credentials to a remote credential cache. 
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6. The method of claim 1, wherein synchronizing includes writing at 
least one of the remote credentials to a local credential cache. 



7. The method of claim 1, wherein synchronizing includes deleting at 
5 least one of the local credentials from a local credential cache. 

8. The method of claim 1, wherein synchronizing includes deleting at 
least one of the remote credentials from a remote credential cache. 

10 

9. The method of claim 1, wherein synchronizing includes modifying at 
least one of the local credentials at a local credential cache based on at least one of 
the remote credentials. 

15 10. The method of claim 1, wherein synchronizing includes modifying at 

least one of the remote credentials at a remote credential cache based on at least 
one of the local credentials. 

1 1 . The method of claim 1 , further comprising updating a list of local 
20 credentials. 
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12. The method of claim 1, further comprising updating a list of remote 
credentials. 

13. The method of claim 1, further comprising determining a state of the 
5 remote credentials dynamically. 

14. The method of claim 1, further comprising maintaining a state file 
for the remote credentials. 

10 15. The method of claim 1, further comprising maintaining a state file 

for the local credentials. 

16. The method of claim 1, further comprising resolving a conflict of 
state between the local credentials and the remote credentials. 
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17. A computer program product encoding a computer program for 
executing on a computer system a computer process, the computer process 
comprising: 

enumerating local credentials and remote credentials in response to 
receiving an event notification; and 

synchronizing the local credentials and remote credentials. 

18. The computer program product of claim 17 wherein the computer 
process further comprises synchronizing the local credentials and the remote 
credentials is based on at least one time-stamp associated with the local credentials 
and at least one time-stamp associated with the remote credentials. 

19. The computer program product of claim 17 wherein the computer 
process further comprises synchronizing the local credentials and the remote 
credentials is based on a comparison of hash values. 

20. The computer program product of claim 17 wherein the computer 
process further comprises writing at least one of the local credentials to a remote 
credential cache. 
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21. The computer program product of claim 17 wherein the computer 
process further comprises writing at least one of the remote credentials to a local 
credential cache. 

5 22. The computer program product of claim 17 wherein the computer 

process further comprises removing at least one of the local credentials from a 
local credential cache. 

23. The computer program product of claim 17 wherein the computer 
10 process further comprises removing at least one of the remote credentials from a 

remote credential cache. 

24. The computer program product of claim 17 wherein the computer 
process further comprises modifying at least one of the local credentials at a local 

15 credential cache. 

25. The computer program product of claim 17 wherein the computer 
process further comprises modifying at least one of the remote credentials at a 
remote credential cache. 

20 
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26. The computer program product of claim 17 wherein the computer 
process further comprises updating a list of local credentials. 

27. The computer program product of claim 17 wherein the computer 
process further comprises updating a list of remote credentials. 

28. The computer program product of claim 17 wherein the computer 
process further comprises maintaining a state of the remote credentials. 

29. The computer program product of claim 17 wherein the computer 
process further comprises determining a state of the remote credentials 
dynamically. 

30. The computer program product of claim 17 wherein the computer 
process further comprises maintaining a state of the local credentials. 

3 1 . The computer program product of claim 17 wherein the computer 
process further comprises error handling. 



tee@hayes pile 509-324»9256 



35 



MS1-1973US 
307891.01 



32. The computer program product of claim 17 wherein the computer 
process further comprises resolving a conflict of state between the local credentials 
and the remote credentials. 
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33. A system comprising: 

an event handler to receive event notifications; and 

a synchronizing module operatively associated with the event handler to 

synchronize local credentials and remote credentials when the event handler 
5 receives an event notification and if the local and remote credentials are different 

from one another 

34. The system of claim 33, wherein the event notification is at least one 
of the following: a session event, a logon event, a logout event, a lock event, an 

10 unlock event, a timer event, a policy application event, and a credential update 
event. 

35. The system of claim 33, wherein the credentials include at least one 
of the following: an encryption credential, a token, an asymmetric key pair, a 

15 symmetric key, a digital certificate, an XrML license, an authentication credential, 
an authorization credential. 

36. The system of claim 33, further comprising a local store manager to 
enumerate the local credentials for the synchronizing module. 

20 
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37. The system of claim 33, further comprising a remote store manager 
to enumerate the remote credentials for the synchronizing module. 

38. The system of claim 33, wherein the local credentials are stored in a 
5 local cache. 

39. The system of claim 33, wherein the local credentials are stored in a 
local cache provided at any number (n) of clients. 

10 40. The system of claim 33, wherein the local credentials are encrypted 

using a master key. 

41. The system of claim 33, wherein the remote credentials are stored in 
a remote cache. 

15 

42. The system of claim 33, wherein the local credentials are stored in a 
remote cache provided at any number (n) of hosts. 

43. The system of claim 33, wherein the remote credentials are 
20 maintained by a remote directory service. 
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44. The system of claim 33, wherein the remote credentials are 
encrypted. 
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